Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2018-4307

Опубликовано: 11 дек. 2018
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2018-4307: Unbreakable Enterprise kernel security update (IMPORTANT)

[4.1.12-124.23.2]

  • n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (Linus Torvalds) [Orabug: 28855335] {CVE-2018-18386}
  • nfs: Don't take a reference on fl->fl_file for LOCK operation (Benjamin Coddington) [Orabug: 28887442]
  • x86/topology: Update the 'cpu cores' field in /proc/cpuinfo correctly across CPU hotplug operations (Samuel Neves) [Orabug: 28933009]
  • ALSA: seq: Fix regression by incorrect ioctl_mutex usages (Takashi Iwai) [Orabug: 29005188] {CVE-2018-1000004}
  • net: phy: mdio-bcm-unimac: fix potential NULL dereference in unimac_mdio_probe() (Wei Yongjun) [Orabug: 29012346] {CVE-2018-8043}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

4.1.12-124.23.2.el6uek

kernel-uek-debug

4.1.12-124.23.2.el6uek

kernel-uek-debug-devel

4.1.12-124.23.2.el6uek

kernel-uek-devel

4.1.12-124.23.2.el6uek

kernel-uek-doc

4.1.12-124.23.2.el6uek

kernel-uek-firmware

4.1.12-124.23.2.el6uek

Oracle Linux 7

Oracle Linux x86_64

kernel-uek

4.1.12-124.23.2.el7uek

kernel-uek-debug

4.1.12-124.23.2.el7uek

kernel-uek-debug-devel

4.1.12-124.23.2.el7uek

kernel-uek-devel

4.1.12-124.23.2.el7uek

kernel-uek-doc

4.1.12-124.23.2.el7uek

kernel-uek-firmware

4.1.12-124.23.2.el7uek

Связанные CVE

CVE-2018-18386
CVE-2018-8043
CVE-2018-1000004

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2018-18386

CVSS3: 3.3
ubuntu
больше 6 лет назад

drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.

redhat логотип

CVE-2018-18386

CVSS3: 3.3
redhat
больше 7 лет назад

drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.

nvd логотип

CVE-2018-18386

CVSS3: 3.3
nvd
больше 6 лет назад

drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ.

debian логотип

CVE-2018-18386

CVSS3: 3.3
debian
больше 6 лет назад

drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local at ...

suse-cvrf логотип

SUSE-SU-2018:3772-1

suse-cvrf
больше 6 лет назад

Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP1)